a57043b612bf92ef7e60b133e870ab7a2b4964766f6a984c57efb3f34252a023

Sharing

Copy URL Twitter E-mail

General

Target

a57043b612bf92ef7e60b133e870ab7a2b4964766f6a984c57efb3f34252a023
Size

58KB
MD5

09f598a76d8d6b01f5a28e3fbe09492d
SHA1

a2871f5601a8c76c18f62b7c9c6a3f56e3b030a9
SHA256

a57043b612bf92ef7e60b133e870ab7a2b4964766f6a984c57efb3f34252a023
SHA512

603cd86b1803641264957e3f62d09d0ca6b9c61752a20eef60a5bfee2104f322acd5f22a3278b64eb2a0962e0dbe6b32b356559f4db9e5e1cf73045b90e1ab8e
SSDEEP

768:72XHkDmhG93GIyf69Zqi4kGJTDo/EO21HkUPcfXJ84tJ/txXy+B:72XEDmc92vE4Dop2TcXtxtxXy+B

Score

N/A

Malware Config

Signatures

Files

a57043b612bf92ef7e60b133e870ab7a2b4964766f6a984c57efb3f34252a023
.exe windows x86

149a45f1c2a086f21637de98ddadb2a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
SetPriorityClass
GetCurrentProcess
lstrcatA
lstrcpyA
GetEnvironmentVariableA
GetShortPathNameA
WaitForSingleObject
ExitProcess
SetThreadPriority
lstrlenA
CopyFileA
GetSystemDirectoryA
GlobalMemoryStatusEx
GetComputerNameA
GetSystemDefaultUILanguage
SetStdHandle
LCMapStringW
CreateProcessA
ResumeThread
GetTempPathA
LoadLibraryA
GetProcAddress
WinExec
OpenMutexA
ReleaseMutex
CloseHandle
GetLastError
GetModuleFileNameA
SetFileAttributesA
CreateThread
CreateMutexA
Sleep
LCMapStringA
IsBadCodePtr
IsBadReadPtr
FlushFileBuffers
SetFilePointer
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
GetTickCount
ExitThread
TerminateProcess
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
HeapAlloc
RaiseException
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
VirtualAlloc

user32

GetDesktopWindow
wsprintfA

advapi32

CreateServiceA
StartServiceA
RegOpenKeyA
RegSetValueExA
CloseServiceHandle
RegCloseKey
RegOpenKeyExA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
OpenSCManagerA
OpenServiceA
DeleteService
RegQueryValueExA

shell32

ShellExecuteA

ws2_32

recv
setsockopt
__WSAFDIsSet
htons
socket
closesocket
select
send
WSAStartup
WSAIoctl
connect
gethostbyname
inet_addr
sendto
WSASocketA
htonl

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

149a45f1c2a086f21637de98ddadb2a2

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ws2_32

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 13KB - Virtual size: 18KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 13KB - Virtual size: 18KB